Vulnerabilities > Dustincowell > Free Simple Software > 1.0
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2010-11-26 | CVE-2010-4311 | Cryptographic Issues vulnerability in Dustincowell Free Simple Software 1.0 Free Simple Software 1.0 stores passwords in cleartext, which allows context-dependent attackers to obtain sensitive information. | 5.0 |
| 2010-11-26 | CVE-2010-4298 | SQL Injection vulnerability in Dustincowell Free Simple Software 1.0 SQL injection vulnerability in the download module in Free Simple Software 1.0 allows remote attackers to execute arbitrary SQL commands via the downloads_id parameter in a download_now action to index.php. | 7.5 |